- Naivas Supermarket announced cyberattacks from ransomware hackers Threat Actor on Sunday, April 23
- The chain store said it took immediate action and consulted cybersecurity experts to prevent the attack
- Chief Commercial Officer Willy Kimani confirmed that the data on Naivas systems do not contain user/customer banking details
Naivas Supermarket is the latest organisation to suffer from ransomware attacks in the country.
Customers being served at Naivas Supermarket. Photo: Naivas.
The chain store announced that its systems encountered a data breach from Threat Actor that saw some of its data stolen.
In a statement released on Sunday, April 23, Naivas Chief Commercial Officer Willy Kimani confirmed the attack, saying they have contained the situation.
PAY ATTENTION: Сheck out news that is picked exactly for YOU ️ click on “Recommended for you” and enjoy!
“We have been the victims of a ransomware attack by an online criminal organisation (Threat Actor). This unlawful intrusion may have compromised some of our data.
“Naivas has contained this attack, and our systems are secure, and our operations are normal,” said Kimani.
Kimani said the supermarket took immediate steps to prevent external access, engaging cybersecurity experts CrowdStrike to ensure system integrity.
He said the matter has been forwarded to law enforcement agencies as investigations continue.
“We are cooperating with the relevant law enforcement agencies as they investigate this and the many current ransomware attacks in Kenya,” he said.
The Threat Actor claimed to have stolen some of the supermarket’s data and planned to publish it online.
“We and law enforcement agencies are monitoring this closely. Naivas has also informed the Office of the Data Protection Commissioner Kenya of this incident,” added the CCO.
Naivas customer data
Kimani confirmed that the supermarket does not hold any credit card/debit card customer information on its systems.
He said payment information is handled securely and protected through Secure Sockets Layer (SSL) encryption.
“At this moment, we are not aware of any malicious use of stolen data. However, it is recommended in the face of this type of situation to pay particular attention to any phishing attempts (by phone, SMS or email) as well as to the sufficient security of passwords,” Kimani noted.
He apologised to customers for the inconveniences resulting from the criminal activity, saying the chain store takes the protection of personal information very seriously.
KAA, Jubilee insurance hacking reports
This came a week after reports that Kenya Airports Authority (KAA) suffered a cybersecurity attack from Medusa ransomware hackers in March 2023.
Medusa demanded KSh 67.6 million to return 514 GB of data it had breached from the airport authority.
KAA confirmed the data breach did not have a significant operational and financial impact.
Another notorious group dubbed LockBit claimed to have hacked Jubilee Insurance, doing away with 662 GB of the company data.
PAY ATTENTION: Click “See First” under the “Following” tab to see TUKO News on your News Feed